Aetna Senior Third Party Risk Adviso in Denver, Colorado

Req ID: 52660BR

POSITION SUMMARY

Can be located near Denver, Co, Scottsdale, AZ, Hartford, CT or Cranberry PA

Aetnas Third Party Risk Governance team must work directly with Aetna business lines and third party contacts to ensure the appropriate protection of sensitive data. In this role, the successful candidate must have the ability to collaborate and drive resolutions with senior Aetna executives. The successful candidate will find themselves in an environment that recognizes and supports the need to drive change across Aetnas third party portfolio.

Fundamental Components: Ability to directly or indirectly work with business lines, subject matter experts and other constituents to ensure understanding of key security controls for use of third parties.Work with third parties to implement key security controls in accordance with Aetna Global Security strategy and vision for protection of sensitive data.Build and maintains positive relationships with management, team members, and stakeholders across Aetna using effective written and oral communication practices. Possess the ability to influence others using program knowledge, negotiation methods, and be able to overcome objections.Possess a foundational understanding of common technology architectures. Will be able to credibly understand high level system architecture and data flow diagrams for the purpose of identifying gaps in disclosure and risk identification.Demonstrate knowledge of key regulatory risks and controls for assigned business lines. Understanding of HIPAA/HITECH required, Sarbanes-Oxley and PCI desired.Ability to effectively communicate complex Cyber Security issues to non-technical audiencesProven track record of driving programs, project, or issues to completionParticipates in the activities of the Information Security Committee, which is responsible for the organization's information security program.

BACKGROUND/EXPERIENCE desired:

10+ years of applicable experience, including 5-7+ in a security risk management role

Third party (vendor) risk management experience

Excellent verbal and written communication skills

Strong project management and strategic planning skills

Technology development and/or Applications/Operational support experience

Software applications proficiency in RSA Archer and MS Office Suite

Demonstrable ability to recognize the relevance of risk trends, issues and potential risk exposure

Understanding of Cyber Security frameworks such as NIST or ISO 27001

Understanding of Risk Management (framework knowledge such as COSO, COBIT, NIST RMF, etc)

EDUCATION

The highest level of education desired for candidates in this position is a Bachelor's degree or equivalent experience.

LICENSES AND CERTIFICATIONS

Information Technology/Certified in Risk and Information Systems Control certification (CRISC) is desired

Information Management/Certified Information Security Manager (CISM) is desired

Information Management/Certified Information Systems Security Professional (CISSP) - - sponsored by International Information Systems Security Certification Consortium is desired

FUNCTIONAL EXPERIENCES

Functional - Information Technology/Security/More Than 10 Years

ADDITIONAL JOB INFORMATION

The Senior Third Party Risk Advisor is a key consultant to Aetna business executives on the security risks of their third parties. This role will work closely to develop action plans, integrate within the strategy for their line of business, and drive the reduction of risk across their portfolio.

Aetna is about more than just doing a job. This is our opportunity to re-shape healthcare for America and across the globe. We are developing solutions to improve the quality and affordability of healthcare. What we do will benefit generations to come.

We care about each other, our customers and our communities. We are inspired to make a difference, and we are committed to integrity and excellence.

Together we will empower people to live healthier lives.

Aetna is an equal opportunity & affirmative action employer. All qualified applicants will receive consideration for employment regardless of personal characteristics or status. We take affirmative action to recruit, select and develop women, people of color, veterans and individuals with disabilities.

We are a company built on excellence. We have a culture that values growth, achievement and diversity and a workplace where your voice can be heard.

Benefit eligibility may vary by position. Click here to review the benefits associated with this position.

Aetna takes our candidates's data privacy seriously. At no time will any Aetna recruiter or employee request any financial or personal information (Social Security Number, Credit card information for direct deposit, etc.) from you via e-mail. Any requests for information will be discussed prior and will be conducted through a secure website provided by the recruiter. Should you be asked for such information, please notify us immediately.

Job Function: Information Technology

Aetna is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected Veterans status.